Lucene search

[email protected]CVE-2020-36740

HistoryJul 01, 2023 - 5:15 a.m.

CVE-2020-36740

2023-07-0105:15:14

CWE-352

[email protected]

web.nvd.nist.gov

cve-2020-36740

wordpress

plugin

vulnerability

cross-site request forgery

csrf

nvd

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.2%

JSON

The Radio Buttons for Taxonomies plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.0.5. This is due to missing or incorrect nonce validation on the save_single_term() function. This makes it possible for unauthenticated attackers to save terms via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.

Affected configurations

Vulners

NVD

Node

helgathevikingsimple_user_listingRange<2.0.6

VendorProductVersionCPE
helgathevikingsimple_user_listing*cpe:2.3:a:helgatheviking:simple_user_listing:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
helgatheviking	simple_user_listing	*	cpe:2.3:a:helgatheviking:simple_user_listing::::::::

CNA Affected

[
  {
    "vendor": "helgatheviking",
    "product": "Radio Buttons for Taxonomies",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThan": "2.0.6",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

References

blog.nintechnet.com/25-wordpress-plugins-vulnerable-to-csrf-attacks/

blog.nintechnet.com/more-wordpress-plugins-and-themes-vulnerable-to-csrf-attacks/

blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-1/

blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-2/

blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-3/

blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-4/

blog.nintechnet.com/multiple-wordpress-plugins-fixed-csrf-vulnerabilities-part-5/

plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2368215%40radio-buttons-for-taxonomies&new=2368215%40radio-buttons-for-taxonomies&sfp_email=&sfph_mail=

www.wordfence.com/threat-intel/vulnerabilities/id/26a246c3-cf67-4566-b1e8-dc14c3c5c827?source=cve

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.2%

JSON

Related for CVE-2020-36740

cvelist1 nvd1 prion1